1 to 25 of 280 SIEM Jobs in the UK

for security initiatives Stay updated with latest trends in cyber securityProfile Proven experience in cyber security engineering and analysis Experience in broad security technologies - SIEM, AV, EDR, next generation firewall, Network Access Control, IAM, etc. Strong understanding of IT infrastructure Demonstrated experience in leading security projects With team leading experience more »

operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's Security Incident and Event Management (SIEM) toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum of SC clearance and be prepared more »

Do you have extensive experience with Splunk? Eligible for DV clearance? And can be based in either Gosport or Glasgow with some remote working? If yes to all of this then read on! As a Managing Security Engineer, you will more »

Focussing on developing highly secure pipelines while using Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/… though; they'll consider a more mid-level candidate with strong foundations Tech-Stack essentials are: Azure (ideally but will consider AWS/GCP), SIEM, ELK, Terraform, Security tools & Scripting Company working heavily in Green-technology, Carbon-Emissions & Sustainability Please submit your CV to be considered and Ben Griffiths from more »

and engineering experience Experience of an enterprise Linux, preferably Red Hat Enterprise Linux, CentOS or Oracle Linux. Recent involvement in implementing IDAM, PAM or SIEM tooling. Experience with monitoring and reporting software – Prometheus, Nagios or similar. Solid scripting experience with one of the following: Python, Shell, Bash or Ruby Familiarity more »

as necessary for the protection of Firm assets. Provide input, create documentation, and review information security policies and procedures. Utilize a common security toolset (SIEM, sniffer, IDS, vulnerability scanner, etc., to identify issues and analyze compliance with existing policies and procedures. Provide reports to the Information Security Manager. Maintain the … and utilities. Utilizes remote control and remote access software in the performance of her/his duties. Utilize standard security tools such as a SIEM, endpoint/network protection technologies, DLP, two-factor, vulnerability scanners, custom scripts, and packet analyzer. Capable of moving 40 pounds of material or equipment without more »

its security suite. A good understanding of Security Operations You're a fast learner, passionate about emerging security trends. Experience with security tools like SIEM, IDPS, Cloud Security, and EDR is a big plus. Experience with Zscaler, CrowdStrike, or Qualys Web3 and DeFi Experience with ISO27001 and SOC2 If you more »

Windows/Linux), to ensure optimal security posture. -Skills in leveraging application monitoring tools - AWS monitoring/alert tools (CloudTrail, Guardduty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. -Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration more »

and data security. Some knowledge of GDPR & PCI-DSS Strong experience of AWS and ideally certified Forensic investigation techniques. Experience with security technologies (e.g., SIEM, DLP, IDS, IPS). Knowledge of Microsoft Security Centre and Sentinel. Understanding of ISO27001:22, NIST, and secure software development. Attributes: Excellent communication and stakeholder more »

with customers and other internal stakeholders. Confidence in effectively communicating technical incidents or security threats to non-technical stakeholders. Previous experience of working with SIEM and log monitoring tools. Proven technical understanding of IT and operating systems including Cisco and Fortinet SC-200, SC-900 or equivalent certification would be more »

latest trends in cybersecurity threats, vulnerabilities, and best practices. Security Infrastructure Management Assist with the maintenance of existing security tools and technologies, such as SIEM, EDR and firewalls. Contribute to the selection of new security tools. Documentation and Reporting Create and maintain detailed documentation of security processes and procedures. Generate … with other IT teams to identify and remediate security vulnerabilities. PROFESSIONAL EXPERIENCE/QUALIFICATIONS/SKILLS Hands on experience with security tools such as SIEM/EDR and vulnerability Management. Proven experience in a security operations role. In-depth knowledge of cybersecurity principles, threat landscapes, and attack vectors. Experience working more »

The successful candidates will work in the Security Operations Centre on both reactive and proactive security engagements with regards to Security Information & Event Management (SIEM), Intrusion Detection Systems (IDS), Cyber Threat Intelligence (CTI) and Threat Mining (TM). Role Responsibilities Provide around the clock protective monitoring through the use of … industry leading SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber-attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members … during security incidents and Threat Mining engagements. Assistance with onboarding process - deployment of SIEM , EDR and Vulnerability Management tools Assistance with active directory administration. Assistance with firewall management. Key Skills Experience in a SOC environment Excellent communication skills and comfortable in a client facing role. A keen interest in cyber more »

of different threat scenarios, investigations, incident response processes and remdiation techniques. • Good knowledge of cyber security systems and tooling • Reasonable knowledge of Security Information and Event Management systems • Reasonable knowledge of Firewall systems (Fortigate essential) • Foundational knowledge of Security Orchestration, Automation and Response (SOAR) systems • Good knowledge of common operating … equipment • Relevant certifications such as CompTIA Security+, CISSP, CISM, or equivalent are a plus; or a desire to progress towards these certificationsProficiency in using SIEM tools, log analysis platforms, and firewall management consoles (FortiGate experience preferred). • Good understanding of risk management, cybersecurity principles, best practices, and frameworks such as more »

range of services and multi vendor solutions, including Microsoft security, compliance and identity services. Managed SOC Managed XDR Cloud Security (M365, Azure, AWS) Managed SIEM (Sentinel + multi vendor) Security Professional Services Pen Testing Red Teaming ISO27001/Cyber Essential Plus Apps/Infra testing You role will be to more »

and data security. Some knowledge of GDPR & PCI-DSS Strong experience of AWS and ideally certified Forensic investigation techniques. Experience with security technologies (e.g., SIEM, DLP, IDS, IPS). Knowledge of Microsoft Security Centre and Sentinel. Understanding of ISO27001:22, NIST, and secure software development. Attributes: Excellent communication and stakeholder more »

Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA/IEC 62443, ISO/IEC 27001/27002, GDPR.Working knowledge of security technologies including SIEM, SOAR, EDR, AV, IDS/IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics.Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks more »

unique security software & service offering then this may be for you. The company: 📍Boutique cyber security business based out of Northampton. 📍Well known for SIEM security and Secure Data Access security. 📍Flex working for all employees. Must attend the Northampton HQ once per week. 📍Circa 30 employees with big growth more »

range of services and multi vendor solutions, including Microsoft security, compliance and identity services. Managed SOC Managed XDR Cloud Security (M365, Azure, AWS) Managed SIEM (Sentinel + multi vendor) Security Professional Services Pen Testing Red Teaming ISO27001/Cyber Essential Plus Apps/Infra testing You role will be to more »

tools to enable the detection and defence from threats to the society. Essential skills: • Experience of configuring security tools including one of the following: SIEM, EDR, AV, WAF or Secure Web Gateways. • Experience of integrating tools in an enterprise environment. • Proven problem-solving, analytical skills • Great experience of Microsoft Defender more »

Strong Incident Response capabilities, and any relevant certifications in this area is desirable. Previous experience in Security Monitoring, having moved into incident management. Strong SIEM experience. Ideally this person would have Vulnerability management experience. System Admin background desired but not essential, this includes experience across Unix, Windows, Cisco, Networking, etc. more »

for building the security architecture and systems within the SOC, as well as maintaining and improving the security monitoring and analysis tools. As a SIEM subject matter expert, you will also be responsible for the maintaining and recommending new tools, as well as updating the systems. You will be a … responsible for the daily maintenance and support of applications and related hardware associated with our solutions for intrusion detection (IDS), Security Incident Event Monitoring (SIEM), and packet capture (PCAP). You will be expected to deliver upgrades and manage configuration of technology that underpins cyber operations, this is will include … be a subject matter expert for these tools, providing guidance to our Security Operations Centre. Main Duties Responding to requests from SOC to tune SIEM, IDS and associated tooling in an effective and timely manner. Working with threat management teams and liaising directly with Network and Data Centre teams to more »

IR35 Status: Outside Duration: 6 Months Travel: Fully Remote Extensive & demonstrable experience working with and tuning Splunk within an Oracle cloud environment. Experienced using SIEM platforms and development of use cases. In addition, experience with Splunk core enterprise, enterprise security experience from both an engineering and knowledge management perspective. Extensive … experience with log aggregation, building use cases, validating false positives, sys log collectors. Provide solution support to the implementation of the Splunk SIEM solution in early non-production and production environments. Assist the project, SOC and wider teams and help develop Cyber Use Cases e.g. log source onboarding, use case more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »

Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM more »

ensuring the security and integrity of our systems and data. This role will have a strong focus on project work with integrations into the SIEM and you will be empowered to drive and build your own security improvement initiatives as part of the role. You will be responsible for designing … threats and vulnerabilities. You will act as a security SME with input into wider digital projects to ensure logging and monitoring coverage into the SIEM platform. This role requires technical expertise, problem-solving skills, and a strong commitment to maintaining the highest level of security. What you'll be doing … SIEM Management: Develop and maintain efficient log ingestion processes to collect, process, and analyse logs from various systems, applications, and network devices Identify and address any gaps in log ingestion coverage to ensure comprehensive visibility into potential security threats Enhance SIEM telemetry by configuring and optimising data sources, correlation rules more »